‘Honey Trap’ Sites Recruiting Israeli Spies

Websites are offering work to Iranians and Iranian proxies in Syria and Lebanon as spies for Israel and these offers are believed to be a counter-intelligence effort driven by Iran's security services.

Investigators at online news website, The Daily Beast, have found the sites as part of an investigation into a series of apparent phishing websites that spoofed think tanks and news organisations focused on the Middle East and national security.  Those sites include domains meant to trick users into believing they were associated with prestigious news outlets across the Middle East.

At least 16 sites were identified using the same proposition, phrasing, logos, phone numbers to lure people working in sensitive security jobs in the Hezbollah terror group in Palestine, the Assad regime in Syria, or in Iran itself. Neither the cyber security firm Mandiant, nor Google or Facebook, where the sites had accounts, were able to identify who lies behind the phishing domains.

The recruiting sites have surfaced and disappeared over a four-year period, targeting users in Iran, Syria, and Lebanon through Google Ads.

Displaying a picture of the Israeli flag and a contact number with an Israeli country code, a website called 'VIP Human Solutions’  advertises itself as the “VIP center for recruitment of the most distinguished in the military and security services of Syria and Hezbollah in Lebanon” that “specialises in research and consultancies in the studies of security and political science in all corners of the world." The Human Solutions’ site promises rapid hiring decisions and big salaries.

Security researchers suspect the intelligence job sites are part of an Iranian counter intelligence effort and say that certain that  these websites are fake and have no  connection to Israel’s genuine  spy services.

The Israel Defence Force (IDF) has previously uncovered a scam by Hamas militants to spy on its soldiers by hacking their mobile phones after posing as women on social media. Members of the Palestinian group found the soldiers online, then tried to strike up a friendship using the fake identities and dozens of IDF soldiers were persuaded to install an application that controlled their phone cameras and microphones.

The Israeli National Cyber Directorate has issued a general warning to Israeli businesses to be aware of potential cyber attacks, as the country faced an uptick in hacking attempts. In December last year, Israeli cyber security firm Check Point said that a hacking group identified with the Iranian regime was aiming to attack Israeli targets.

Daily Beast:     Times of Israel:     Media Line:      BBC

You Might Also Read:

Israel & Iran Locked In Cyber Conflict:

 

« Ransomware Attack On French Ministry of Justice
Britain's Cyber Security Strategy Focuses On Resilience »

CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

ZenGRC

ZenGRC

ZenGRC - the first, easy-to-use, enterprise-grade information security solution for compliance and risk management - offers businesses efficient control tracking, testing, and enforcement.

XYPRO Technology

XYPRO Technology

XYPRO is the market leader in HPE Non-Stop Security, Risk Management and Compliance.

Clayden Law

Clayden Law

Clayden Law advise global businesses that buy and sell technology products and services. We are experts in information technology, data privacy and cybersecurity law.

CSI Consulting Services

CSI Consulting Services

Get Advice From The Experts: * Training * Penetration Testing * Data Governance * GDPR Compliance. Connecting you to the best in the business.

North Infosec Testing (North IT)

North Infosec Testing (North IT)

North IT (North Infosec Testing) are an award-winning provider of web, software, and application penetration testing.

SecureWorks

SecureWorks

SecureWorks provides intelligence-driven security solutions for organizations to prevent, detect, rapidly respond and predict cyberattacks.

Bastille

Bastille

Bastille’s patented software and security sensors bring visibility to devices emitting radio signals (Wi-Fi, cellular, IoT) in your organization.

GTB Technologies

GTB Technologies

GTB Technologies is a cyber security company that focuses on providing enterprise class data protection and data loss prevention solutions.

Conscia

Conscia

Conscia provides IT infrastructure solutions and 24/7 services in network, data center, security and mobility.

Latvian Information & Communications Technology Association (LIKTA)

Latvian Information & Communications Technology Association (LIKTA)

LIKTA brings together leading Latvian companies, organizations and professionals in the field of Information & Communications Technology

Samsung Knox

Samsung Knox

Samsung Knox brings multi-layered defence-grade security to your business’s smartphones and tablets.

Trusted Knight

Trusted Knight

Trusted Knight is a leading provider of security software solutions focused on defeating newly developed malware and crimeware trojans.

InfoGuard

InfoGuard

InfoGuard is a leading Swiss company providing comprehensive cyber security and network solutions.

XignSYS

XignSYS

XignSys develops innovative password-free and user-friendly Authentication solutions and electronic signature systems for B2B and B2C applications.

Uhuru Corp

Uhuru Corp

Uhuru offers a wide variety of IoT products and solutions including enebular® IoT Orchestration Service.

At-Bay

At-Bay

At-Bay offer an end-to-end solution to cyber risk with comprehensive risk assessment, a tailored cyber insurance policy and year-long, active, risk-management service.

BluBracket

BluBracket

BluBracket is the first comprehensive security solution that makes code safe—so developers can innovate and collaborate, and security teams can sleep at night.

East Midlands Cyber Resilience Centre (EMCRC)

East Midlands Cyber Resilience Centre (EMCRC)

The East Midlands Cyber Resilience Centre is set up to support and help protect businesses across the region against cyber crime.

HolistiCyber

HolistiCyber

HolistiCyber provide state-of-the art consulting, services, and solutions to help proactively and holistically defend against a new era of constantly evolving cyber threats.

Security Risk Management (SRM)

Security Risk Management (SRM)

SRM provide a comprehensive security risk management service encompassing people, processes, technology, governance, compliance and risk management.

Eurotech

Eurotech

Eurotech provides Edge Computers and IoT solutions. We help to connect your assets and make them smarter through secure and agnostic hardware and software technologies.